Skip to Main Content
Liongard Library

Welcome to Liongard Library, where Lions share! This is a community-led space where Liongard users can come to teach and learn from one another.
Share custom Metrics, get inspired and see what’s trending in the Pride.

Pride Etiquette:
➕ Have great custom Metrics? Add them as entries!
🌟 Want to use a Metric? Copy the query and
follow this doc.
👍 Tried a Metric from the Library? Like it!
📣 Have a question or feedback on a Metric? Add a comment!
🔎 Not sure where to start? Learn about Metrics and how to write them.
💬 Need help writing a metric or want to help support others? Join the conversation in our Liongard Lounge #metrics slack channel.


🥴 See something off? Open a support chat to let us know.

Categories Active Directory
Created by Scott Davis
Created on Dec 28, 2021

Active Directory: SamAccountName Computers

December 2021, Microsoft announced a vulnerability (CVE-2021-42287 and CVE-2021-42278) patched in November but when unpatched can allow for an easy windows domain takeover. With a CVSS score of 7.5, both vulnerabilities enable Windows AD domain privilege escalation. We have created this metric as well as one to monitor the users SamAccountNames and alert changes by using Liongard's Change

Query

Computers[].SamAccountName

  • Attach files